golf-data

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). This skill explicitly fetches golf data and news from ESPN public endpoints (see SKILL.md description and the get_leaderboard / get_player_info / get_news commands), so the agent ingests open third‑party web content as part of its workflow which could contain instructions that influence its actions.